Windows Client Guidance against speculative execution vulnerabilities

Page 28 of 75 FirstFirst ... 18262728293038 ... LastLast
  1. AndreTen's Avatar
    Posts : 15,191
    Windows 10 (Pro and Insider Pro)
       19 Jan 2018 #270

    IronZorg89 said: View Post
    That's my whole point. The vulnerabilities from Spectre &Meltdown are known by the bad guys (hackers) out there and I am still not completely covered. Unfortunately, there is nothing either you , me or anyone else can do while waiting for a firmware patch.
    lx07 said: View Post
    Isn't there? What if you run as a standard user? Would that help or not?

    Doesn't the malware required need authority to run or does any user (including limited ones) have access to see what the butler is doing in the wine cellar (to use the feeble analogy apparently used by every single newspaper on the planet).
    And add some layer of protection to your system and your habits (closing browser after visiting sites, that are have important data for you - online mail etc). Using safe software (patched browsers are crucial) and prevent malware to install local.

    As far as I know, there is no malware in the wild, which explore these vulnerabilities yet. But it's only question of time.
      My ComputersSystem Spec

  2.    19 Jan 2018 #271

    lx07 said: View Post
    Isn't there? What if you run as a standard user? Would that help or not?

    Doesn't the malware required need authority to run or does any user (including limited ones) have access to see what the butler is doing in the wine cellar (to use the feeble analogy apparently used by every single newspaper on the planet).
    Yes, but at some point or another one will need to use the Admin user account for some specific tasks and for a long period of time depending on what is being done.
      My ComputerSystem Spec

  3.    19 Jan 2018 #272

    AndreTen said: View Post
    And add some layer of protection to your system and your habits (closing browser after visiting sites, that are have important data for you - online mail etc). Using safe software (patched browsers are crucial) and prevent malware to install local.

    As far as I know, there is no malware in the wild, which explore these vulnerabilities yet. But it's only question of time.
    That's the way to go for now and it has always been even before the discovery of Spectre & Meltdown vulnerabilities. Just for kicks, you know that Chrome and some chromium-based browsers like Opera & Vivaldi won't get a fix against them before January 23, 2018, which, I admit, is pretty soon. Until that date, all one can do, is to enable an optional feature "Site Isolation" in order to mitigate the exploitation of these vulnerabilities.
      My ComputerSystem Spec

  4. AndreTen's Avatar
    Posts : 15,191
    Windows 10 (Pro and Insider Pro)
       19 Jan 2018 #273

    IronZorg89 said: View Post
    That's the way to go for now and it has always been even before the discovery of Spectre & Meltdown vulnerabilities. Just for kicks, you know that Chrome and some chromium-based browsers like Opera & Vivaldi won't get a fix against them before January 23, 2018, which, I admit, is pretty soon. Until that date, all one can do, is to enable an optional feature "Site Isolation" in order to mitigate the exploitation of these vulnerabilities.
    Click image for larger version. 

Name:	image.png 
Views:	5 
Size:	6.0 KB 
ID:	173382
      My ComputersSystem Spec

  5.    19 Jan 2018 #274

    AndreTen said: View Post
    And add some layer of protection to your system and your habits (closing browser after visiting sites, that are have important data for you - online mail etc). Using safe software (patched browsers are crucial) and prevent malware to install local.

    As far as I know, there is no malware in the wild, which explore these vulnerabilities yet. But it's only question of time.
    There is code at GitHub that will do it
      My ComputerSystem Spec

  6.    19 Jan 2018 #275

    AndreTen said: View Post
    Click image for larger version. 

Name:	image.png 
Views:	5 
Size:	6.0 KB 
ID:	173382
    Even before the advent of Firefox Quantum, it has always been my favorite browser.
      My ComputerSystem Spec

  7.    19 Jan 2018 #276

    IronZorg89 said: View Post
    Even before the advent of Firefox Quantum, it has always been my favorite browser.
    Mine as well been using it since it first came out as Phoenix.
      My ComputerSystem Spec

  8.    19 Jan 2018 #277

    Josey Wales said: View Post
    There is code at GitHub that will do it
    Do you have a referenced link?. I am just curious.!
      My ComputerSystem Spec

  9. AndreTen's Avatar
    Posts : 15,191
    Windows 10 (Pro and Insider Pro)
       19 Jan 2018 #278

    Josey Wales said: View Post
    There is code at GitHub that will do it
    IronZorg89 said: View Post
    Do you have a referenced link?. I am just curious.!
    if working code is available, be ready for some serious trouble... just question of time and how will bad guys pack it.
      My ComputersSystem Spec

  10.    19 Jan 2018 #279

    IronZorg89 said: View Post
    Do you have a referenced link?. I am just curious.!
    I will not post it. Also some guy at MDL wrote some kind of script to activate it. I think that has been posted here.
      My ComputerSystem Spec


 
Page 28 of 75 FirstFirst ... 18262728293038 ... LastLast

Related Threads
The PowerShell script execution policies enables you to determine which Windows PowerShell scripts (if any) will be allowed to run on your computer. Windows PowerShell has four different execution policies: Execution Policy Description ...
Source: Mitigating speculative execution side-channel attacks in Microsoft Edge and Internet Explorer - Microsoft Edge Dev Blog See also update: Cumulative Update KB4056892 Windows 10 v1709 Build 16299.192 - Windows 10 Forums
Source: Google Online Security Blog: Disclosing vulnerabilities to protect users
Windows 10 - Need some guidance on recovery in Installation and Upgrade
One of my spare Windows 10 machines is on life support. I must have clobbered it somehow when I was tweaking the multiple display settings ( to incorporate a HDMI projector). It actually worked fine all week, but today, when I tired to set it...
Read more: http://www.zdnet.com/article/microsoft-offers-it-guidance-to-prepare-for-windows-as-a-service/
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 04:58.
Find Us